The remote host is missing an update to the systemas announced in the referenced advisory.

The following packages are affected: asterisk14 asterisk16 asterisk18

CVE-2011-1507Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6.1.25,1.6.2.x before 1.6.2.17.3, and 1.8.x before 1.8.3.3 and AsteriskBusiness Edition C.x.x before C.3.6.4 do not restrict the number ofunauthenticated sessions to certain interfaces, which allows remoteattackers to cause a denial of service (file descriptor exhaustion anddisk space exhaustion) via a series of TCP connections.

Solution:Update your system with the appropriate patches orsoftware upgrades.